proftpd-ldap-1.3.7e-bp154.3.3.1 4>$  Apb!M@eeeA$JKoN2&. mB^ІѵQ,)7AOx+캗Eq]G\iF0Te;s֗Os!kYoC?VTh{ӝ,nd;n rdrN鬆Pg٣FGaL`ׯTUuR+Pf%#Lk'&>!-yC~jswnӻ|I\-D-.HfrvfEP42dee6ede1aa8674520991dec8bab77ee663903bf3b35f50732ef2208169c75ad8edc4036d294d925bb272c80c394c4da39f271b}b!M@eeeqj50+]qI]w MwVxxp>0?0d " :`dpt      U X\af   (89:F-G-H-I-X.Y.\.0].4^.@b.Tc.d/e/f/l/u/v/w0Tx0Xy0\z0t0000Cproftpd-ldap1.3.7ebp154.3.3.1LDAP Module for ProFTPDThis is the LDAP Module for ProFTPDbDs390zp21SUSE Linux Enterprise 15openSUSEGPL-2.0-or-laterhttp://bugs.opensuse.orgProductivity/Networking/Ftp/Servershttp://www.proftpd.org/linuxs390xb073b91261a7fac6152613f64e1fed70f25e2ba98134eb6f3bdd84cc4b1f3a9632rootrootproftpd-1.3.7e-bp154.3.3.1.src.rpmproftpd-ldapproftpd-ldap(s390-64)@@@@@@    libc.so.6()(64bit)libc.so.6(GLIBC_2.2)(64bit)libc.so.6(GLIBC_2.3)(64bit)libc.so.6(GLIBC_2.4)(64bit)liblber-2.4.so.2()(64bit)libldap_r-2.4.so.2()(64bit)proftpdrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)1.3.7e3.0.4-14.6.0-14.0-15.2-14.14.3bL@b@Qb?@b ap_^@^3^S^5h@^C]@]o]@]D%]\@\+@[E@[DYqYC@X@XӸXO@XX~@X{d@WW/*@W/*@Ujchris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deJohannes Segitz Dominique Leuenberger chris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.deMartin Hauke Bernhard Wiedemann chris@computersalat.dechris@computersalat.deJan Engelhardt Jan Engelhardt chris@computersalat.dechris@computersalat.debwiedemann@suse.comnmoudra@suse.comchris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dechris@computersalat.dejengelh@inai.dechris@computersalat.dechris@computersalat.de- 1.3.7e - Released 23-Jul-2022 * Issue 1448 - Ensure that mod_sftp algorithms work properly with OpenSSL 3.x. - 1.3.7d - Released 23-Apr-2022 * Issue 1321 - Crash with long lines in AuthGroupFile due to large realloc(3). * Issue 1325 - NLST does not behave consistently for relative paths. * Issue 1346 - Implement AllowForeignAddress class matching for passive data transfers. * Bug 4467 - DeleteAbortedStores removes successfully transferred files unexpectedly. * Issue 1401 - Keepalive socket options should be set using IPPROTO_TCP, not SOL_SOCKET. * Issue 1402 - TCP keepalive SocketOptions should apply to control as well as data connection. * Issue 1396 - ProFTPD always uses the same PassivePorts port for first transfer. * Issue 1369 - Name-based virtual hosts not working as expected after upgrade from 1.3.7a to 1.3.7b. - rebase proftpd-no_BuildDate.patch- fix deps for SLES- remove configure --disable-static- Update to version 1.3.7c: * http://proftpd.org/docs/NEWS-1.3.7c * http://proftpd.org/docs/RELEASE_NOTES-1.3.7c - Update patches * harden_proftpd.service.patch * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd.spec * proftpd_env-script-interpreter.patch- Added hardening to systemd service(s) (bsc#1181400). Added patch(es): * harden_proftpd.service.patch Modified: * proftpd.service- Update to version 1.3.6e: + Invalid SCP command leads to null pointer dereference. - Do not limit to openSSL < 1.1: proftpd has had support for openSSL 1.1 sice version 1.3.6a. - Rebase proftpd-no_BuildDate.patch.- update to 1.3.6d * Issue 857 - Fixed regression in the handling of `%{env:...}` configuration variables when the environment variable is not present. * Issue 940 - Second LIST of the same symlink shows different results. * Issue 959 - FTPS uploads using TLSv1.3 are likely to fail unexpectedly. * Issue 980 - mod_sftp sends broken response when CREATETIME attribute is requested. * Bug 4398 - Handle zero-length SFTP WRITE requests without error. * Issue 1018 - PidFile should not be world-writable. * Issue 1014 - TLSv1.3 handshake fails due to missing session ticket key on some systems. * Issue 1023 - Lowercased FTP commands not properly identified. - rebase proftpd-no_BuildDate.patch- fix for boo#1164572 (CVE-2020-9272, gh#902) - fix for boo#1164574 (CVE-2020-9273, gh#903) - update to 1.3.6c * Fixed regression in directory listing latency (Issue #863). * Detect OpenSSH-specific formatted SFTPHostKeys, and log hint for converting them to supported format. * Fixed use-after-free vulnerability during data transfers (Issue #903). * Fixed out-of-bounds read in mod_cap by updating the bundled libcap (Issue #902). - remove obsolete proftpd-tls-crls-issue859.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch * proftpd_env-script-interpreter.patch- cleanup tls.template * remove deprecated NoCertRequest from TLSOptions- fix changes file * add missing info about boo#1155834 * add missing info about boo#1154600 - fix for boo#1156210 * GeoIP has been discontinued by Maxmind * remove module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuation-notice/ - fix for boo#1157803 (CVE-2019-19269), boo#1157798 (CVE-2019-19270) * add upstream patch proftpd-tls-crls-issue859.patch- fix for boo#1154600 (CVE-2019-18217, gh#846) - update to 1.3.6b * Fixed pre-authentication remote denial-of-service issue (Issue #846). * Backported fix for building mod_sql_mysql using MySQL 8 (Issue #824). - update to 1.3.6a * Fixed symlink navigation (Bug#4332). * Fixed building of mod_sftp using OpenSSL 1.1.x releases (Issue#674). * Fixed SITE COPY honoring of restrictions (Bug#4372). * Fixed segfault on login when using mod_sftp + mod_sftp_pam (Issue#656). * Fixed restarts when using mod_facl as a static module - remove obsolete proftpd-CVE-2019-12815.patch * included in 1.3.6a (Bug#4372) - add proftpd_env-script-interpreter.patch * RPMLINT fix for env-script-interpreter (Badness: 9)- fix for boo#1155834 * Add missing Requires(pre): group(ftp) for Leap 15 and Tumbleweed * Add missing Requires(pre): user(ftp) for Leap 15 and Tumbleweed- Update proftpd-dist.patch to use pam_keyinit.so (boo#1144056)- fix for boo#1142281 (CVE-2019-12815, bpo#4372) arbitrary file copy in mod_copy allows for remote code execution and information disclosure without authentication - add patch * proftpd-CVE-2019-12815.patch taken from: - http://bugs.proftpd.org/show_bug.cgi?id=4372 - https://github.com/proftpd/proftpd/commit/a73dbfe3b61459e7c2806d5162b12f0957990cb3- update changes file * add missing info about bugzilla 1113041- Fix the Factory build: select the appropriate OpenSSL version to build with. (fix for boo#1113041)- Reduce hard dependency on systemd to only that which is necessary for building and installation. - Modernize RPM macro use (%make_install, %tmpfiles_create). - Strip emphasis from description and trim other platform mentions.- update to 1.3.6 * Support for using Redis for caching, logging; see the doc/howto/Redis.html documentation. * Fixed mod_sql_postgres SSL support (Issue #415). * Support building against LibreSSL instead of OpenSSL (Issue #361). * Better support on AIX for login restraictions (Bug #4285). * TimeoutLogin (and other timeouts) were not working properly for SFTP connections (Bug#4299). * Handling of the SIGILL and SIGINT signals, by the daemon process, now causes the child processes to be terminated as well (Issue #461). * RPM .spec file naming changed to conform to Fedora guidelines. * Fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - New Modules: * mod_redis, mod_tls_redis, mod_wrap2_redis With Redis now supported as a caching mechanism, similar to Memcache, there are now Redis-using modules: mod_redis (for configuring the Redis connection information), mod_tls_redis (for caching SSL sessions and OCSP information using Redis), and mod_wrap2_redis (for using ACLs stored in Redis). - Changed Modules: * mod_ban The mod_ban module's BanCache directive can now use Redis-based caching; see doc/contrib/mod_ban.html#BanCache. - New Configuration Directives * SQLPasswordArgon2, SQLPasswordScrypt The key lengths for Argon2 and Scrypt-based passwords are now configurable via these new directives; previously, the key length had been hardcoded to be 32 bytes, which is not interoperable with all other implementations (Issue #454). - Changed Configuration Directives * AllowChrootSymlinks When "AllowChrootSymlinks off" was used, only the last portion of the DefaultRoot path would be checked to see if it was a symlink. Now, each component of the DefaultRoot path will be checked to see if it is a symlink when "AllowChrootSymlinks off" is used. * Include The Include directive can now be used within a section, e.g.: Include /path/to/allowed.txt DenyAll - API Changes * A new JSON API has been added, for use by third-party modules. - remove obsolete proftpd_include-in-limit-section.patch - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch- update to 1.3.5e * Fixed SFTP issue with umac-64@openssh.com digest/MAC. * Fixed regression with mod_sftp rekeying. * Backported fix for "AllowChrootSymlinks off" checking each component for symlinks (CVE-2017-7418). - remove obsolete patch * proftpd-AllowChrootSymlinks.patch (now included) - rebase patches * proftpd-dist.patch * proftpd-no_BuildDate.patch * proftpd_include-in-limit-section.patch- Sort SHARED_MODS list to fix build compare (boo#1041090)- Removed xinetd service- fix for boo#1032443 (CVE-2017-7418) * AllowChrootSymlinks not enforced by replacing a path component with a symbolic link * add upstream commit (ecff21e0d0e84f35c299ef91d7fda088e516d4ed) as proftpd-AllowChrootSymlinks.patch - fix proftpd-tls.template * reduce TLS protocols to TLSv1.1 and TLSv1.2 * disable TLSCACertificateFile * add TLSCertificateChainFile- Remove --with-pic, there are no static libs. - Replace %__-type macro indirections. - Replace old $RPM shell vars by macros.- fix and update proftpd-basic.conf.patch - add some sample config and templates for tls * proftpd-tls.template * proftpd-limit.conf * proftpd-ssl.README- backport upstream feature * include-in-limit-section (gh#410) * add proftpd_include-in-limit-section.patch- update to 1.3.5d * gh#4283 - All FTP logins treated as anonymous logins again. This is a regression of gh#3307.- update to 1.3.5c * SSH rekey during authentication can cause issues with clients. * Recursive SCP uploads of multiple directories not handled properly. * LIST returns different results for file, depending on path syntax. * "AuthAliasOnly on" in server config breaks anonymous logins. * CapabilitiesEngine directive not honored for / sections. * Support OpenSSL 1.1.x API. * Memory leak when mod_facl is used. -rebase proftpd-no_BuildDate.patch- fix systemd vs SysVinit- Remove redundant spec sections - Ensure systemd-tmpfiles is called for the provied config file- fix for boo#970890 (CVE-2016-3125) - update to 1.3.5b: http://www.proftpd.org/docs/RELEASE_NOTES-1.3.5b * SSH RSA hostkeys smaller than 2048 bits now work properly. * MLSD response lines are now properly CRLF terminated. * Fixed selection of DH groups from TLSDHParamFile. - rebase proftpd-no_BuildDate.patch- fix for boo#927290 (CVE-2015-3306) - update to 1.3.5a: See http://www.proftpd.org/docs/NEWS-1.3.5a - rebase patches * proftpd-ftpasswd.patch * proftpd-no_BuildDate.patch - remove gpg-offline dependency - fix permissions on passwd file * unable to use world-readable AuthUserFile '.../passwd' (perms 0644): * 0644 -> 0440s390zp21 16603244201.3.7e-bp154.3.3.11.3.7e-bp154.3.3.1mod_ldap.so/usr/lib64/proftpd/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.opensuse.org/openSUSE:Maintenance:17605/openSUSE_Backports_SLE-15-SP4_Update/0711e2c285cc944eb170ac455c6ad665-proftpd.openSUSE_Backports_SLE-15-SP4_Updatecpioxz5s390x-suse-linuxELF 64-bit MSB shared object, IBM S/390, version 1 (SYSV), dynamically linked, BuildID[sha1]=9ccf33e0d199833df65e58bf8ae91b7768855660, strippedRRRRRRH5Y[p>nutf-8acc064d23c73f8e72ab311e0a2903a673eaf730e853b3ac78a2c00d370a336a3? 7zXZ !t/G] crv9wPJU)wlR ͚Dzڤ?&8J-^Vn>UQb5_ 맡"\₹B/tUH1`K vnGC(>/t^=OyL,g%U(%Q1}IaWiurıl5UBō@f5ɝ]vUydke"dm 5'R)zd|tnDk 9 6M}u5 s#ුB͎3Eëq!李(X/;cqL5.sbY tF́6p|:^fmKn@$pk.g碅7 ΕH1K((!D.m %G;]=j8fn #N;lU|jFQIHL(ex@kgj'v _g!JRxg&ZT^SHo/"kdruH*xAO8Dz ft;4~ܿpt|8s#︄M{"Þ2\bCԟIY%7>05 a ahgCZ_ ֚| ]qk͌^ѣLټ 0(#Dsʬ2~yp9S= b @Sl~k?rzCc at[a eO5iDҰG G+c83aO:*9s> hʳbD ?RF*V#ܯg"&n9wb&$op">OW|_JdEljq| R`Ye mbbud6V!Ϡp!+ӉA_D;Wvh/#'{ֹm˩07‹6Po𞰥|XWk{9~D> 9*U<݅ BH;,{b-Ynb#R| "R R٦w#2Lb8:ZՊq!K fSH$y.itUCK wCUb77zЭ ֯ҭ)#dcar'Uۗ`ħְuQ/F AY5 H(zv+v^ǻ/ V Ts=JȇP-I6 xk)iA@[lJ̉F⁎N¥|`yќ{/u17zzh[_!_;Ki7f_HAtP"QqQl VCr6\ۄ= SdZ;UPZj{w& 8nP6 sD؏ƔfUNQK *s6k4p%wKk.ݤ 4(QiH~0*psa#B6Jߌ帔+^z.'ﴇdg`S Ft#/ߒj7jZ衘- wluDBѥا̠,U(.⭓>+ݶN="<Ғ1F'iO?i]kE='EVUOF%na&X[QzC!7RҮa %t}`{,#ҧ񃀴OOɊZVD=X 5hw|%W7M0" ɏ=Gh}IUxvalW{\( KCD2 *qu/ƾ%o` D ] vΉ,KF[ĹDh2"4G"w#9&DN*U6 +#疒qDe0r*]Z[w `ԇY:v۲bV"PM ʿ^*F7Pkۈ#=Tu+%cuȟ4(R'(AUfĘ:xEգMES>4tfJ^^,ĝ-PF1G89 }frfӵ-; ;nv){Gߵ]lHbOg+u/bP`0,C~out6 (Z)+8OPuU$-FlwBZb0^pc0\oN}.'X,(jA JIn!2wڃ=ޛpVjMHH">V4;t(!DVΟ5ΆV fOW۷y8Cwp ?Ȕݜ .ّ~G9\71 2{QƙLAS/=1۠jgjnQސeXC+fgvT2/T IX%tΛmi.? P\^zN..F,ڍL+0QTurDQ1ÈHGz}nib<(:mT ) ?uauK4igZv̙rQ3p:4I_S91!;T 7`_SiڻxGMy:OAQnLU RO<=p-Nd  g~5+0Kq~k<䳍-ni֩;^R&,wzVUvz $2&# V,$wV7w[\MMꍜޜ:=^tԗy=6&]+~3Np}{Mjk% {HX̗vyHxg5V[['4n?Cb  Wu]܃%3L.he+1GRCG+I=Ѭ$tSUp8f`xϭ'&’RBҦY4M)*YZ!c˕Z&׏jvh!VP^ /i $eYO-Zō֕߬ Anjql /WzP1( 泦Keb{Wk,x\?trYCfGDݵ!ij5B2W5 , WV,= dH^XmlCC Ş<9\zdV;߮Umg`trhq9V_HsiֻN]Tcˀ4qm%lM+ Mg~O\qryxz^T~O(W+H4|o^^l´[E 3!G}#G@Z.06M~\ %pdh"\$ΦqG;#~1i=f`(RWQ ,-F\-'2ǂM3hR:VvRS/Ƅ.MP@W㺃w?>lZ ;1-8!޹q/ P:9,q6]W>**\2\X [Z|TԺ/66Ȇ_O jw]{=x=i I 3i$n Qy ^3'֔LaE4h.(#1 w!}e|&-^57k ٯi?ueg2$hW4qYtmGo6[I!pⶖ]:r- O~w~ꌖQEE%hQDb˱Bhi>,Vpn̋`-'WA-]K^8| ݠS]\ó֏`o0𔕪Mܣjע_9?pI,>-BI=hSMڅ?ES&0 y:Hez ZtC4pTӱ-PZb'Up_B ~fQR9-UXV&Tpj/ِա#Fx_r l/~l,ÿV̹% 1ډۯ[͛ (s 8A9LxowrGuM# `OC^=HͻwCr`hLG@+V цWPsaofkZyVtNgR5lU gYqvY^?2^iD`b#P12Py`rD@7g< lTQtUjYv<0*D~IHohP&\u2a>N 6&\n-]5lL~aϬPVQm'! TXT ;^ˇ\9L423Ms1J3stN(Bzf$'n?|*w $o-H0w#ts=5A13WP&3ĐfL O%CۓWZ}!²؉؄j]OMq:IoymBT,IsC_PUe,Qۥ=:C# $ KH{vzĀu!=jpy ;rDEj.[eΎ0J/PǠF[$>#>0{qۯٙ*T,:UAќǗ9iIe (~08Q rcQ@0Cb3(.'p4֌yXPNODd2:lf@0]GUIp~ʇQۛ| uW"!яԡmovE7PR284m)-=5C3l@&.IH> # "̟Ȓ$R/?D8 {Sߩ=Qȫ?kUQLܠKc~)rwQ v|W" q+E ZA[ [ (ZlW ?a!N^Eep'p[]Q #"8,47]c`++W H~K<$J4~C5|lNٍ\gsL> !l瓯xƎ>,%EC.g2`;lѤ^]7n)Cm}]ɒ"k Ah|U ?&nCf7f Zc="oCݞʸ NDO΋oƂX:*T-m@c:~vv~D_L& ȋY|}bz\}kr19 |NL M$`87RLMk>lO*jsN' ]`۔|1IގW՜W"O9z'|YꮱN% (0'h-Ic!+V)܀ l_|^5MᐯzRTN020;-u)%ئ1 %jqWQgMY~R9oTm1?^ɭ'2O7eʢMFҭ,|VI;.ɚZOA߈ KLJQ x:zzpH[4/ H(_ +i\G ^V' }\첱8s%A5MkV䓤V1א`{rKoD(l/G]]W_)2źQ*W-n!OGۺ,3^`PVt-Xg96R=nCҦ ր$,"^#%'ɮ ׿?9jZC_%8z 5w \%Xbw{#ÛYE,6 Azv-ѷ<1I*迗MrBO2}V?s"7sM0 v7 3TXضvwPBQqGL)5ߖ֫ uGfG&{s|jBeB_>?_iĹ(N9Ő]_N )+4zH͙?@yVh5ǵbET(gr%L{Rj*>> {:}}aY>iC&;1a( ֱ*bZefщ'-rֳJs o^V9VUK䀎gĎUuDd/So%,e^a&{,7$AMt(tiQfL?Oiz<]bn2[o7z@dTBᲸt%qCz !șWE M.aiV ;QӁLϩ6eͩ;yE%-jE>W*m eM ڠyYM&d,8 j"uZ+$ u]2n|n.GƦ;]xz ~Ȍ<^l~Ae;2:1oODJd0_R3Y&Qx̫哛 8bcԀ?my9'<X-"tD' CRZ IЁ6UJДWGȽZ6tG/{iO(&g H$ݙS 4fn@@!z xD1o6yGY) gϽULoJO_ۭStGJ7;hVv#L7;em6.9K(N?K5q$LnMY 1G Q]s(EN~m@h;taڅEB%2'|0] u/YS`!_J v Rz꾣G# < )ɳ5|5_]CO U,Ɖs.Cx~O|9y=w6~O5aQ,=XC .ʟaidGe ߀1TXA)n~ )7U\k EHscufarP`*q߽A_=RT6mi/P!8}.UTiE6,)MM!1Uʡ1ĤQ*ʕ;3]U+*~ T~SsOS lzy7|IRr2j }P*Jk#@ݤ).{}C RXu雱cЧ[e"$J5ܱN-zYUK3FjGrޠ^e =_πKQPM]M*u"|әQZ-6٤ܕfB.{NVv$J)V)KP_q{Jh-g݃(,zp`˛ƣ,⭡$jD/_)z-90o\/ӿڲ/\Fy[fmEiϧFQ6/ onQǐvX耵vߝFיbC|hPv0ve}":Z؇H+zEC5̧_aXY/O_#}޽,ᰎ5ZFpk MO DJlEaGAYgBn&oO )' 7IۥŤnձ.Dhz|_;ԮZݪ);o̔I6ֳON e[|Svq8iiEkCUR|qB@DH/ω+6uD]jqKqIElulzVԨnڶjؚϣ"%W̠A`-_dRkտdZi N(19,64Q{ nR²f8o/nŋcj?UCtZ5R:~fZ #pL.?Oܨr WU~[`Ii}@`(ggW2UG7i`>uSDC#4M찳b+ qA6IycTʹX ϦA]n+:^GrTGlBajXw,$fPo~YkW G8?ւ)sf2gWs<89uk9a`tgu8JqAuh*I!Еa{_ K%9h8>UJU9ɣ"S1,~WNiIF^Rv9v)#^0p Ug.ِ&N>3N9ltTF;q i#uⰃ4heivgnDop#U m)+ggHl%T5vOz UIF.N ; {2؄VM:1~cܦDW5tcPg JY(9b`Z1UX)K#܊rϤ QAtZP -(~I忔AyKCHQ 5i&\A_:kǧk+S$A,27twoPOg3ܨ-n_oP{^ij[aw T(c-T$~OW^𼒼GE.־*B35 E٠(X]Xufi%`ɟs=Vܫu8>@i1A) h`„u)Ănp&UR,%6Pf On bl[!X?:D{1+:i`eZ"0TA-n.Ra0Q0=x\Y6yTk-/ YI6;F%a uɧ?ғ4  "ڻÛ%4wAn InfįFT&h0r+YwiRٝ6nkaE? ؖ~ N&փ3Sf6#.zV$ɹϋVNn͂_¨:1*kV[UpL[}=]D]6ggqPWv$IBHH%^UյF^lX].i;=)+6ćRǣTZeHyx UTdEе𙝨XG@K5W^ZdQчPD\4n[0l΃Vj|8"Km4)[VZԲ6,iT -|^at8V__Ǐ.EyCvc&6+0J(I$pG1>T~N)*jĄkEzaijB[;$"Nni9d8-f (4,2cXqReÈoj)66al^. ы0w<$1Ʊcgu8C-/!xb>:hW^Ð_8g (eذqI!2{~QJJe6b> :nM3)!8lJaoнq%xgö+ۿN%02knx!IC:ZS.v«f [g,le=1Vbv@?)!]*G+zNN w,fXhD2{Їn&aLz$Z mGc}s{Mb:U V~u3-ˡm{-5mF-5v%u vK5@gҶbC&R܎)T 1~ L3b`"KϨ&X{d(zR8>E9\o Pp]F'շHMOڇM(`$W.&mSxGMl˵7/ Ikv&i@5X^k.fX?o٫eCW=3sfꌉZ83ć(_pRBa%[ܞR`Բ,9beo{)!8lFĴn삽 J4A \+I9{bQ3f5([UL8:ZndhBc"WL[HQl wۿsuxIlA;A6iIxPf%YVJpu?Q&7jBg|zf;jO"w)5.$VFBU,??-_B׃{ٱb]DY˔3LJB.o[O<3KBK[H Ι`EUfY5js][nݲd= ,-@[0.1Vh;004CXvPH2mtT BA"ߌ !CGG=6W:oRg:wJ r}C>|?8<_ 1C 'EV"{$EMң-?:!^QlLM6?!-_W X֓cѶ7?hlZ/3Gr{lRIK)Y+&eX WН6tِlC`y[饲VP 㪲_LR\;`x)@)z bdw*V&py"_]tor' g`w۫XaC&[ap+ʹq]'䒂эZSK4(;Bh7M35̬`GzhsPKt*Ҁޅu<"k#*%I*Wd)3+9-=8is\ -`u; 'v:}QDx0;dz.уXm*;J#QJV yD `O ސa1))']+YmFx&H)Ym jOlEnPkI& ] 8bm"?'pߜ'҄rvY=i7a#@g=7ݽmA(o1! oLMV T?ř=. =y=eeŘ4,ԁ%DY0ASyV(@K_+T'oJW@{d mygts0]Hu?+㱊D6y7VdS1Lx"nF<ޅ&_tʌ < !W搜67%܀ ;v>WAٜδAքF\hj[?kUaMY<@(+]U$ sq7l6T,a?|gP O\m9/|f]DN €Pdª wp:\-gAJy _sdr~'Dv.ȇ KkK>UaЯɂY [ @؅“Q>(rjE [ )F_nZqKm}3g>q&!=!P&#ptzX >iUg`w.٤]af#LtV5ɧ}K#ZT7Ra[}2-H`X~yJѳ\Bd=*|t40Rz  z\?:8ISmj#H p0``y+{Fe>рG,Hdb*b/L E2`YړҶPx~x\ګNQ= YZ